🚨 Shai-Hulud Strikes Again:834 Packages Compromised.Technical Analysis →
Socket
Book a DemoInstallSign in
Socket
Book a DemoInstallSign in

@iota/extract-json

Package Overview
Dependencies
Maintainers
6
Versions
40
Alerts
File Explorer

Advanced tools

License
Socket logo

Install Socket

Detect and block malicious and high-risk dependencies

Install

@iota/extract-json

Extracts JSON encoded messages from signature message fragments

latest
Source
npmnpm
Version
1.0.0-beta.30
Version published
Maintainers
6
Created
Source

@iota/extract-json

Extracts JSON encoded messages from signature message fragments.

Installation

Install using npm:

npm install @iota/extract-json

or using yarn:

yarn add @iota/extract-json

API Reference

extract-json.extractJson(bundle)

Summary: Extracts JSON from transactions.
Throws:

  • errors.INVALID_BUNDLE : Make sure that the bundle argument is an array of transaction trytes.
  • errors.INVALID_JSON : Make sure that the transactions' signatureMessageFragment fields contain valid JSON.
ParamTypeDescription
bundlearrayTransaction trytes

This method takes the signatureMessageFragment fields of all the given transaction trytes, and tries to extract any JSON data that's in them.

The following forms of JSON-encoded values are supported:

  • "{ \"message\": \"hello\" }"
  • "[1, 2, 3]"
  • "true", "false" & "null"
  • "\"hello\""
  • 123

Related methods

To get a bundle's transaction trytes from the Tangle, use the getBundle() method.

Returns: string | number | null - The JSON data in the transactions
Example

try {
  const json = JSON.parse(extractJson(bundle))
} catch (error) {
  console.log(error);
}

Keywords

iota
tangle
library
browser
javascript
nodejs

FAQs

Package last updated on 18 Jun 2020

Did you know?

Socket

Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.

Install

Related posts

Malicious Crate Mimicking ‘Finch’ Exfiltrates Credentials via a Hidden Dependency

Security News

/

Research

Malicious Crate Mimicking ‘Finch’ Exfiltrates Credentials via a Hidden Dependency

Socket found a Rust typosquat (finch-rust) that loads sha-rust to steal credentials, using impersonation and an unpinned dependency to auto-deliver updates.

By Kush Pandya  -  Dec 05, 2025